Overview

overview

10

task1

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    39020de18922d08047017511d07c13f438e467409baf10291b7cab0d37a20687.doc

  • Size

    152KB

  • Sample

    200127-xa81jj7lr6

  • MD5

    7028456a585880539561edc0d7e2ab48

  • SHA1

    932a58280b36d438d0b051f4897d40217a3fc041

  • SHA256

    39020de18922d08047017511d07c13f438e467409baf10291b7cab0d37a20687

  • SHA512

    fd636178e5cc3937205624f4c52f898fa90bf8800840ad1e45ddbd22c686aac06b7ac71b4182182e2be2748a568e51fb3a8f663473bc986719e27bacf26df54d

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://yochina.apps.zeroek.com/assets/GQK9Gly/
exe.dropper

http://www.bandarwinsbobet.com/wp-admin/7bw/
exe.dropper

http://test.pakspaservices.com/wp-content/Yi1j6O7/
exe.dropper

http://portal.meucompromisso.com/wp-admin/kQJ/
exe.dropper

https://wondersofgeorgia.com/wp-admin/jv7hvg/

Targets

    • Target

      39020de18922d08047017511d07c13f438e467409baf10291b7cab0d37a20687.doc

    • Size

      152KB

    • MD5

      7028456a585880539561edc0d7e2ab48

    • SHA1

      932a58280b36d438d0b051f4897d40217a3fc041

    • SHA256

      39020de18922d08047017511d07c13f438e467409baf10291b7cab0d37a20687

    • SHA512

      fd636178e5cc3937205624f4c52f898fa90bf8800840ad1e45ddbd22c686aac06b7ac71b4182182e2be2748a568e51fb3a8f663473bc986719e27bacf26df54d

    Score
    10/10

    • Process spawned unexpected child process

    task1

MITRE ATT&CK Enterprise v6

Tasks